Podcast Summary: Cybersecurity Headlines — March 11, 2026
Podcast: Cybersecurity Headlines
Host: CISO Series (Rich Stroffelino)
Episode: New Cyber Command chief, Russia targets Signal, Codex Security
Date: March 11, 2026
Episode Overview
This episode delivers a brisk roundup of the latest news shaping the information security landscape. Highlights include the historic confirmation of a new U.S. Cyber Command chief, state-sponsored phishing targeting encrypted messaging users, significant advances in AI-powered vulnerability scanning, persistent cyber espionage threats to Finland, a notable Meta acquisition, findings on the CADNAP botnet, Microsoft advancements in passkey support, and CISA’s tightening of federal patch timelines.
Key Discussion Points and Insights
1. New Head of U.S. Cyber Command and NSA Confirmed
[00:06–01:42]
- Army Lieutenant General Joshua Rudd confirmed as the new dual-hatted chief of US Cyber Command and the NSA.
- Senate vote: 71–29, a rare floor vote for this position.
- Position had been vacant nearly a year.
- Rudd’s Background:
- Deputy Chief, US Indo-Pacific Command; prior Special Forces experience.
- Notably lacks signals intelligence or direct cyber operations experience.
- Will continue the “dual hat” leadership model for 18 months, as affirmed by President Trump.
- Opposition:
- Senator Ron Wyden called for the floor vote, stating:
“Rudd’s lack of experience and vague answers about using the NSA's surveillance tools for warrantless spying on U.S. citizens.” — [00:40]
- Senator Ron Wyden called for the floor vote, stating:
2. Russian Actors Target Encrypted Messaging Users
[01:43–02:30]
- Dutch intelligence reports Russian-linked campaigns targeting Signal and WhatsApp users—not by breaking encryption but via social engineering.
- On Signal: Attackers posed as support, warning users of data leaks to obtain PIN codes, potentially letting them hijack accounts.
- On WhatsApp: Attackers tried to exploit the “link device” feature to gain access to messages.
- The apps' encryption remains uncompromised.
3. OpenAI Launches “Codex Security” Vulnerability Scanner
[02:31–03:14]
- OpenAI’s Codex Security (formerly Aardvark) rolls out a vulnerability scanner akin to Anthropic’s “Claude Code.”
- Available as a research preview to select ChatGPT customers.
- In initial testing, Codex Security uncovered over 10,000 high-severity issues across major projects (e.g., Chromium, OpenSSL, PHP, GnuTLS).
- Previous similar announcement by Anthropic affected stock prices; whether Codex’s launch will do the same remains seen.
- Quote:
“It was big news when Anthropic rolled out vulnerability scanning in Claude code. And so it’s a big deal when OpenAI did the same now with Codex.” — [02:34]
4. Intensified Cyber Espionage Against Finland
[03:15–03:58]
- Finnish Security and Intelligence Service warns of “persistent” cyber operations targeting the tech sector, government, and research institutions.
- Culprits: Russian and Chinese intelligence.
- Aim: Steal sensitive research, intellectual property, and influence operations through misinformation.
- Threat persists after Finland expelled Russian diplomats.
- Assessment:
“No prospect of such operations subsiding even in the long term.” — [03:35]
5. Meta Acquires Moltbook
[04:15–05:00]
- Meta acquires Moltbook (a Reddit-like platform for AI agents), including founder Matt Schlicht and Ben Parr.
- Platform is to be integrated into Meta’s Superintelligence Labs; Moltbook itself will shut down.
- Notably, Moltbook had a widely exposed production database at launch, revealing many fake or bot accounts.
- Acquisition fits into ongoing AI innovation hires (referencing Peter Steinberger’s move to OpenAI).
6. CADNAP Botnet Targets Asus Routers
[05:01–05:43]
- Black Lotus Labs details CADNAP, a stealthy botnet active since August 2025.
- 14,000+ infected devices, half Asus routers, majority in the U.S.
- Uses customized CAdemlia DHT protocol to hide IPs.
- Persistent via malicious cron script—runs every 55 minutes.
- Linked to “Doppelganger” proxy service.
7. Microsoft Introduces Passkey Support for Entra
[05:44–06:12]
- Microsoft rolling out passkey support for Entra accounts; user passkeys stored/handled by Windows Hello.
- Passkeys are device-bound and not synced, supporting multiple accounts per device.
- Public preview mid-March through end of April. Government cloud rollout: mid-April to mid-May.
8. CISA Tightens Deadlines for Critical Patching
[06:13–06:44]
- CISA adds urgent vulnerabilities to its Known Exploited Vulnerabilities catalog—now with shorter patching deadlines.
- SolarWinds Web Help Desk critical flaw (public since September, actively exploited): patch required by March 12.
- Two additional vulnerabilities, one in Ivanti EPM, each with just two weeks to patch.
- Insight:
“Generally… three weeks to patch. However, the latest round of additions have been given tighter deadlines.” — [06:13]
Notable Quotes & Memorable Moments
-
On New Cyber Command Chief’s Experience:
“Rudd has no prior experience in signals intelligence or cyber operations.” — Host [00:24]
-
On Ongoing Espionage in Finland:
“The assessment painted a bleak picture, stating that the country faces continual attempts at cyber espionage with no prospect of such operations subsiding even in the long term.” — Host [03:35]
-
Regarding OpenAI’s Vulnerability Scanner:
“OpenAI said it found over 10,000 high severity issues… including in widely used projects like Chromium, OpenSSL, PHP, and GnuTLS.” — Host [02:50]
Timestamps for Important Segments
| Timestamp | Segment | |-----------|-----------------------------------------------------| | 00:06 | New NSA & Cyber Command Leadership Confirmed | | 01:43 | Russia Targets Encrypted Messaging Apps | | 02:31 | OpenAI’s Codex Security Vulnerability Scanner | | 03:15 | Persistent Cyber Espionage in Finland | | 04:15 | Meta’s Acquisition of Moltbook | | 05:01 | CADNAP Botnet Details | | 05:44 | Microsoft Passkey Support For Entra | | 06:13 | CISA’s Accelerated Patch Deadlines |
Summary Table
| Topic | Key Takeaway | |-------------------------------------|------------------------------------------------------------------------------------------------------------------| | U.S. Cyber Command Chief | Lt. Gen. Joshua Rudd confirmed despite no SIGINT/cyber ops background | | Russian State Phishing | Attacks on Signal/WhatsApp users target human error, not encryption | | OpenAI Codex Security | Powerful new vuln scanner finds tens of thousands of serious bugs in major open source projects | | Finnish Espionage Threat | Russian, Chinese actors keep up aggressive, nation-state cyber espionage | | Meta Acquires Moltbook | AI-centric Reddit clone, plagued by poor security, absorbed by Meta's research labs | | CADNAP Botnet | Large new botnet, hides command infra using custom DHT, heavy on Asus routers in the US | | Microsoft Entra Passkeys | Moving to passkey-based authentication, with granular device/account management | | CISA Patch Deadlines | Patch timelines for federal agencies shortened in response to ongoing exploits |
Conclusion
This episode offers an incisive look at developments across national cybersecurity leadership, AI-driven security tooling, persistent state-backed threats, and evolving enterprise security practices. The show’s rapid delivery and expert curation make it essential brief listening for security professionals.